Resources For IT Professionals
Get this Tag RSS feed
Popular Tags

Browse by Tags

 >  TechNet Articles  >  All Tags  >  AD CS
Tagged Content List

  • Wiki Page: Certification Authority Root Signing

    Table of Contents What is Certification Authority Root Signing? Target Audience for Certification Authority Root Signing How much does it cost? Are there any requrements to implement an external root? Which commercial CA's provide Root Signing service? This article provides descriptional information...
    on15 May 2013

  • Wiki Page: Troubleshooting Certificate Autoenrollment in Active Directory Certificate Services (AD CS)

    These are the steps to troubleshoot autoenrollment problems. The basis for this article was produced by a veteran field troubleshooting engineer, Roger Grimes. The article assumes that certificates that a user or machine should be receiving automatically from an issuing CA server on the network are...
    on14 May 2013

  • Wiki Page: Windows XP: Certificate Status and Revocation Checking

    Applies To Windows XP Currently this Applies to Windows XP only. The article How Certificate Revocation Works applies to Windows Vista, Windows Server 2008, Windows 7, and Windows Server 2008 R2. The goal is to integrate the two articles here in the future. Table of Contents Introduction...
    on7 May 2013

  • Wiki Page: AD CS: How to Obtain a List of Certificate Templates that are Superceding other Certificate Templates

    Summary In environments where there are many certificate templates in Active Directory, you may have the need to view which certificate templates are superseding others, and utilizing the Certificate Templates MMC console is not an efficient option. An example of when you might need this data...
    on29 Apr 2013

  • Wiki Page: Active Directory Certificate Services Performance Reports

    When IT professionals are designing a public key infrastructure (PKI) and deploying certification authorities (CA), a common question is to ask is "What type of performance can I expect?" Of course, this is a difficult question to answer because the actual performance of the computer, the...
    on16 Apr 2013

  • Wiki Page: Certificate Templates and their Storage within Active Directory

    Table of Contents Location of certificate templates in the Configuration container Additional Resources Applies to Windows Server 2003, Windows Server 2003 R2, Windows Server 2008, Windows Server 2008 R2, and Windows Server 2012 Enterprise certification authority (CA) and Active Directory Domain...
    on15 Apr 2013

  • Wiki Page: Implementing Certificate Enrollment Web Services in Windows Server® 2012 That Uses an Issuing CA With Spaces in the Name

    In Windows Server 2012, if you implement Certificate Enrollment Web Services to target an Issuing certification authority (CA) that has spaces in the name, some additional configuration is required: You must modify the URI in the Application Settings for the Certificate Enrollment Web Services...
    on6 Apr 2013

  • Wiki Page: Incompatible with Windows Server 2008 Enterprise (Version 3 or V3) Certificate Templates

    This article applies to applications, operating systems, and devices that do not support version 3 (CNG) templates , which can be issued by Windows Server 2008 Enterprise and Datacenter editions as well as Windows Server 2008 R2 Standard, Enterprise, and Datacenter editions running Active Directory...
    on26 Mar 2013

  • Wiki Page: AD DS Site Awareness for AD CS and PKI Clients

    Table of Contents Enabling site awareness on a CA Client selection of a CA Applies to Windows®8 and Windows Server® 2012 Certificate services in Windows® 8 and Windows Server® 2012 can be configured to utilize Active Directory Domain Service (AD DS) site s to help optimize certificate services...
    on20 Mar 2013

  • Wiki Page: Large CRLs: What is Added to a Certificate Revocation List (CRL)?

    This article discusses the reasons a certificate revocation list (CRL) can become large. The contents of this article include the following: Table of Contents What makes large CRL? Additional References What makes large CRL? There is really one item that makes the CRL grow: revoked certificates...
    on14 Mar 2013

  • Wiki Page: Active Directory Certificate Services (AD CS) Overview

    Active Directory Certificate Services (AD CS) provides customizable services for issuing and managing public key infrastructure (PKI) certificates used in software security systems that employ public key technologies. The digital certificates that AD CS provides can be used to encrypt and digitally...
    on13 Mar 2013

  • Wiki Page: AD: Certification Authority Web Enrollment Configuration Failed 0x80070057 (WIN32: 87)

    Table of Contents Error Cause Resolution Error If you run into the following error when trying to install CA Web Enrollment after migrating or restoring a CA: Certification Authority Web Enrollment: Configuration Failed Active Directory Certificate Services setup failed with the following...
    on13 Feb 2013

  • Wiki Page: Running AD CS on Server Core

    Applies to Windows Server 2012 RC There are several changes from earlier operating systems regarding the installation of roles on Server Core. For example, you can install and configure Windows Server 2012 RC using the graphical user interface (GUI) and then switch to the Server Core option. You...
    on12 Feb 2013

  • Wiki Page: Active Directory Certificate Services SMTP Exit Module for Windows Server 2008 R2 Example

    The following is a Windows Server 2008 and Windows Server 2008 R2 version of the SMTP Exit Module posted at http://technet.microsoft.com/en-us/library/cc773129(WS.10).aspx Sample Configuration Batch File The following batch file can be used as a sample to configure the SMTP exit module...
    on7 Feb 2013

  • Wiki Page: Step by Step Guide - Single Tier PKI Hierarchy Deployment

    The purpose of this Step-by-Step Guide is to enable you to create a single-tier public key infrastructure (PKI) hierarchy using Windows Server® 2008 R2 Active Directory Certificate Services (AD CS). This guide contains instructions for installation/configuration of Windows Server 2008 R2 Enterprise...
    on7 Feb 2013

  • Wiki Page: AD CS Remote Server Management

    Applies to: Windows Server 2012 RC There are multiple methods for managing AD CS remotely using the following built-in tools and methods: Remote Server Administration Tools for Windows 8 Remote Server Administration Tools for Windows Server 2012 In Server Manager, click Manage , and...
    on7 Feb 2013

  • Wiki Page: Updated requirements for a Windows Server 2008 R2 domain controller certificate from a 3rd party CA

    The Kerberos Key Distribution Center (KDC) service on Windows Server 2008 R2 will look for one of three conditions when parsing its certificate store for potential domain controller certificates: the OID for KDC Authentication (1.3.6.1.5.2.3.5) the presence of the Template Name DomainController...
    on2 Feb 2013

  • Wiki Page: AD CS PKI Design

    Active Directory Certificate Services (AD CS) Public Key Infrastructure (PKI) Design Guide The Windows Server® product line provides a variety of secure applications and business scenarios based on the use of digital certificates. Before you can use digital certificates, however, you need to design...
    on15 Jan 2013

  • Wiki Page: Offline Root Certification Authority (CA)

    A root certification authority (CA) is the top of a public key infrastructure (PKI) and generates a self-signed certificate. This means that the root CA is validating itself (self-validating). This root CA could then have subordinate CAs that effectively trust it. The subordinate CAs receive a certificate...
    on14 Jan 2013

  • Wiki Page: Active Directory Certificate Services (AD CS) Survival Guide

    This " Survival Guide " aims to gather all materials related to Active Directory Certificate Services (AD CS) . Feel free to add content, links and information relevant to the subject. Table of Contents Getting Started Books Planning and Deployment Management Monitoring Keeping Windows...
    on28 Nov 2012

  • Wiki Page: AD CS Security Guidance

    Applies to: Windows Server 2003, Windows Server 2003 R2, Windows Server 2008, Windows Server 2008 R2, Windows Server 2012 It is important to define and implement an Active Directory Certificate Services (AD CS) management model when you develop a certification authority (CA) infrastructure. This...
    on31 Oct 2012

  • Wiki Page: Configuring Certificate Template: "A Certificate could not be created. A private key could not be created."

    Applies to Windows Server 2008, Windows Vista, Windows Server 2008 R2, Windows 7 Best Practice for Configuring Certificate Template Cryptography Starting with Windows Vista and Windows Server 2008, the option to utilize Key Storage Providers (KSPs) in addition to Cryptographic Service Providers...
    on29 Oct 2012

  • Wiki Page: AD CS on Virtual Machines

    Applies to: Windows Server 2003, Windows Server 2003 R2, Windows Server 2008, Windows Server 2008 R2, Windows Server 2012 You can run all six of the Active Directory Certificate Services (AD CS) role services on virtual machines. Some things to consider when virtualizing these roles are: A...
    on1 Oct 2012

  • Wiki Page: Root CA certificate renewal

    Table of Contents Renewal with existing key pair Renewal with new key pair In this article I will discuss about Root CA certificate renewal with new and existing key pair. At first we discuss about CA certificate renewal with existing key pair. Renewal with existing key pair When you renew...
    on14 Aug 2012

  • Wiki Page: Active Directory Certificate Services (AD CS): How to Restore the pKIEnrollmentService object

    Symptoms of a missing pKIEnrollmentService object The Policy Module "Initialize" method returned an error. Cannot find object or property. The returned status code is 0x80092004 (-2146885628). Certificate Services could not find required Active Directory information. The "Enterprise...
    on13 Jul 2012
Page 2 of 3 (57 items) 123
Can't find it? Write it!

Post an Article